public sealed class IdentitySelector : IMessage<IamPolicyAnalysisQuery.Types.IdentitySelector>, IEquatable<IamPolicyAnalysisQuery.Types.IdentitySelector>, IDeepCloneable<IamPolicyAnalysisQuery.Types.IdentitySelector>, IBufferMessage, IMessage
Specifies an identity for which to determine resource access, based on
roles assigned either directly to them or to the groups they belong to,
directly or indirectly.
Required. The identity appear in the form of members in
IAM policy
binding.
The examples of supported forms are:
"user:mike@example.com",
"group:admins@example.com",
"domain:google.com",
"serviceAccount:my-project-id@appspot.gserviceaccount.com".
Notice that wildcard characters (such as * and ?) are not supported.
You must give a specific identity.
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Missing the information I need","missingTheInformationINeed","thumb-down"],["Too complicated / too many steps","tooComplicatedTooManySteps","thumb-down"],["Out of date","outOfDate","thumb-down"],["Samples / code issue","samplesCodeIssue","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-08-07 UTC."],[[["\u003cp\u003eThis webpage details the \u003ccode\u003eIdentitySelector\u003c/code\u003e class, part of the \u003ccode\u003eGoogle.Cloud.Asset.V1\u003c/code\u003e namespace, used for specifying an identity to analyze resource access within Google Cloud.\u003c/p\u003e\n"],["\u003cp\u003eThe \u003ccode\u003eIdentitySelector\u003c/code\u003e class implements multiple interfaces, including \u003ccode\u003eIMessage\u003c/code\u003e, \u003ccode\u003eIEquatable\u003c/code\u003e, \u003ccode\u003eIDeepCloneable\u003c/code\u003e, and \u003ccode\u003eIBufferMessage\u003c/code\u003e, and inherits from \u003ccode\u003eObject\u003c/code\u003e.\u003c/p\u003e\n"],["\u003cp\u003eThe primary functionality of \u003ccode\u003eIdentitySelector\u003c/code\u003e revolves around its \u003ccode\u003eIdentity\u003c/code\u003e property, which is a string representing a specific user, group, domain, or service account whose resource access is to be determined.\u003c/p\u003e\n"],["\u003cp\u003eThe available versions of \u003ccode\u003eIdentitySelector\u003c/code\u003e range from 2.7.0 to 3.12.0, with 3.12.0 being the latest version available.\u003c/p\u003e\n"],["\u003cp\u003eConstructors are available for creating a new \u003ccode\u003eIdentitySelector\u003c/code\u003e instance, either empty, or by copying an existing one.\u003c/p\u003e\n"]]],[],null,[]]
